PDA

View Full Version : SECURITY 1: ADWARE & SPYWARE: protection, scanning & removal tools



MoNsTeReNeRgY22
06-28-2008, 12:57 PM
Be sure to see our TABLE OF CONTENTS (http://www.hackhunters.com/forum/index.php?topic=243.msg894#msg894) for links to every category in this Computer Tech Board

http://www.hackhunters.com/forum/Themes/cs-dk115v1/images/new_some.gif (http://www.hackhunters.com/forum/index.php?topic=359.0) SECURITY 1: Adware & Spyware (protection, scanning & removal tools)

SpywareBlaster
SpywareGuard
Malwarebytes' Anti-Malware
Spybot
Spyware Doctor
Ad-Aware 2008
Spyware Terminator
STOPzilla ANTI-SPYWARE
RegAuditor 2.2
Dr.Web CureIt!

.
.
.
_________________________________________________



Might as well add this, I am a trained malware removal expert in many online communities, and here is what I post when a user is deemed clean.

Nice job your log looks clean!
Please use the following suggestions to help prevent reinfection.

Also, you may delete any tools I had you download during the cleaning process.

Reset System Restore to remove infected files that have been backed up by Windows. The files in System Restore are protected to prevent any programs from changing those files. You will lose all previous Restore Points which are likely to be infected. Now we need to make a new Restore Point for your PC, please do the following:
Click Start
Right click My Computer and select Properties
Click the System Restore tab
Check "Turn off System Restore" and click "Apply".
It will then ask you if you want to turn off System Restore, select Yes
Please give a moment as it will delete the old Restore points
Then uncheck "Turn off System Restore" which will create a new Restore point
Click OK

The following is a list of tools and utilities that I like to suggest to people. This list is full of great tools and utilities to help you understand how you got infected and how to keep from getting infected again. As a note, all of the tools and utilities mentioned are either free or have free versions available.

Malwarebytes' Anti-Malware (http://www.malwarebytes.org/mbam.php) - A very powerful tool which searches and kills malware that infects your system.
**Tutorial on installing & using this product can be found HERE (http://www.help2go.com/Tutorials/Protect_Your_PC/Malwarebytes_Anti-malware_Tutorial.html)**

SpywareBlaster (http://www.javacoolsoftware.com/spywareblaster.html) - Great prevention tool to keep malware from installing on your system.
**Tutorial on installing & using this product can be found HERE (http://www.bleepingcomputer.com/forums/tutorial49.html)**

SpywareGuard (http://www.javacoolsoftware.com/spywareguard.html) - Works as a Spyware "Shield" to protect your computer from getting malware in the first place.
**Tutorial on installing & using this product can be found HERE (http://www.bleepingcomputer.com/tutorials/tutorial50.html)**

IE-SpyAd (http://www.spywarewarrior.com/uiuc/resource.htm#IESPYAD) - Puts over 5000 sites in your restricted zone so you'll be protected when you visit innocent-looking sites that aren't actually innocent at all.
**Tutorial on installing & using this product can be found HERE (http://www.bleepingcomputer.com/tutorials/tutorial53.html)**

ATF Cleaner (http://www.atribune.org/content/view/25/2//) - Cleans temporary files from IE and Windows, empties the recycle bin and more. Great tool to help speed up your computer and knock out malware that like to reside in the temp folders.

Antivirus Program An antivirus program is crucial in today's digital world to stay protected. I notice that you don't have one installed! Therefore I recommend avast! 4 Home Edition (http://www.avast.com/eng/avast_4_home.html), Anti-Vir (http://www.free-av.com/), or PC Tools AntiVirus (http://www.pctools.com/antivirus/).

Firewall A firewall is very important, in order to protect your computer from hackers. I notice that you don't have one installed! Therefore I recommend Comodo (http://www.personalfirewall.comodo.com/download_firewall.html), Online Armor (http://www.tallemu.com/product_overview.html), or Outpost (http://www.agnitum.com/products/outpostfree/index.php).
**Tutorial on Firewalls can be found HERE (http://www.bleepingcomputer.com/forums/tutorial60.html)**

It is important to run only one of each type of protection program in resident mode at a time since conflicts can make them less effective. This would mean only one resident antivirus, firewall and scanning type of anti-spyware. Programs like SpywareBlaster and IE-Spyads do not conflict with any of these since they don't have a real time scanning engine that would conflict.

Windows Updates - It is highly recommended to make sure that both Internet Explorer and Windows are kept current with the latest critical security patches from Microsoft. To do this just start Internet Explorer and select Tools > Windows Update, and follow the online instructions from there.

It is also highly recommended to stay on top of your updates at all times, for Windows and all the above mentioned applications. This will ensure that you stay protected at the maximum level possible.

Finally, I strongly recommend http://www.clicksmilies.com/s0105/aktion/action-smiley-036.gif How did I get infected in the first place? (http://forums.spywareinfo.com/index.php?showtopic=60955) (by Tony Klein)

Good luck and safe surfing :)

MoNsTeReNeRgY22
07-08-2008, 03:44 AM
also Ccleaner (http://www.ccleaner.com/) (Crap Cleaner) is a very good tool if you don't want to go playing with your registry

If you use CCleaner, make sure to backup your registry up when it asks you to.

Wind-god14
07-08-2008, 09:24 PM
When doing anything that may mess with your registery, always backup, and create restore points....you never know, you computer could go
...

and thats never good

Ov3rCasT
07-08-2008, 11:21 PM
I would like to add a little something about softwares to protect your PC.

If you don't have both yet installed on your PC and up to date (antivirus + firewall), I recommand highly to ask a friend (or doing this on any other well protected PC) to download, scan the files and put everything on a CD for you.

The best is to work offline when you're "rebuilding" a PC after you got serious problems.

_________________________________________________

There is something important to know about free tools. In a few cases you'll have to check yourself regularly for updates when you have only the free version (because the auto update option is not available with the free version), so read carefully.

MoNsTeReNeRgY22
08-08-2008, 08:37 PM
Anti-Spyware Real-Time Protection:


http://www.javacoolsoftware.com/jcs.jpg


Click Here >>> SpywareGuard (http://www.javacoolsoftware.com/spywareguard.html)



Destroying malware, one byte at a time:



http://www.malwarebytes.org/images/banners/banner1.gif


Click Here >>> Malwarebytes' Anti-Malware (http://www.malwarebytes.org/mbam.php)

I like tHe icons ;D

Psych0
10-12-2008, 02:06 PM
Description

Spybot - Search & Destroy detects and removes spyware, a relatively new kind of threat not yet covered by common anti-virus applications. Spyware silently tracks your surfing behaviour to create a marketing profile for you that is transmitted without your knowledge to the compilers and sold to advertising companies. Even if you don't see the symptoms, your computer may be infected, because more and more spyware is emerging. Spybot-S&D is free, so there's no harm giving it a try to see if something has invaded your computer.



http://www.spybot.info/images/icons/spybotsd32.gif


Click Here >>> Spybot (http://www.spybot.info/en/spybotsd/index.html)


Description



http://www.pctools.com/res/images/sd/title_doctor_en.gif


Click Here >>> Spyware Doctor (http://www.pctools.com/spyware-doctor/?ref=ff&utm_source=ff&utm_medium=banner&utm_content=ff_sd_728_01)


Description

With the ability to scan your RAM, Registry, hard drives, and external storage devices for known data-mining, advertising, and tracking components, Ad-Aware 2008 can clean your system easily, allowing you to maintain a higher degree of privacy while you surf the Web.

Ad-Aware 2008 includes an improved threat detection, enhanced rootkit removal system, faster updates, Lavasoft ThreatWork to submit suspicious files for analysis, and is now compatible with 32-bit and 64-bit Windows Vista.




http://a248.e.akamai.net/f/248/5462/2d/lavasoft.element5.com/img/award_softonic_best08_lighter.png


Click Here >>> Ad-Aware 2008 (http://www.lavasoft.com/products/ad_aware_free.php)

Ov3rCasT
10-13-2008, 10:42 PM
Spyware Terminator

Description

Effective Spyware Protection Spyware Terminator prevents spyware from infecting your computer. Free 100% Real-Time Protection. Guards your system and ensures spyware is intercepted before it installs. Antivirus Protection Included. Extended detection of malware during scans and within the Real-Time Shield. Safe Internet Browsing and Search.
Web Security Guard is one of many useful Crawler Toolbar’s features that displays website reviews and threat level to help prevent users from entering potentially dangerous websites.


http://www.spywareterminator.com/img/box.jpg


Click Here >>> Spyware Terminator 2.5 (http://www.spywareterminator.com/download/download.aspx)

wOOdy-HH-
10-14-2008, 03:29 AM
All the above spyware programs are a great way of catching and removing spyware, I have did a little checking and with most of my PC customers who are ideal targets for spyware and are still running the XP platform these types of programs are great.

I have noticed that there has been a great reduction in Spyware/Malware in Vista by using the built in pushing filter feature especially after the release of servicepack 1 for Vista.
The Pushing filter is available for XP with servicepack 3 but with a much less aggressive database.
With the integration of the pushing filters and with some other security measures that have been implemented by MS spyware and/or tracking scripts can only be implemented by one means, if a person opens a website or email that contains a pushing or tracking violation then it is blocked thats if the security's are active and with MS pushing filters on you are connected with the live database when IE/Outlook or any other MS product that connects to the INTERNET.

Now with the growing popularity of some third party browsers like Firefox,Opera and others they each have there own security's in place and this is a common problem with using a third party browser MS will not support a non MS product hens the above security measures will not work.
I know that the battle between the deferent browsers has been a issue with Web designer for years,as a website designer myself working between the deferent browsers is no fun but you have to work with it.

In Closing:
If you visit a website or open a email and a security screen opens saying you need to install something or a script has been stopped then that is were human intelligence comes into place as for my customers well lets just say I have made a great deal of money on people ignorance and/or education on this type of subject, The best advice I can give someone is to slow down and if you are not sure then search.
The INTERNET is a endless supply of information that will provide you with that answer
SHOULD I OR SHOULDN'T I?.

Thanks all.

-DM

Ov3rCasT
10-15-2008, 11:46 AM
Description

STOPzilla Anti-Spyware successfully detects and removes Spyware, Adware, Popup Ads, Phishing Attacks, Hi-Jackers, Rootkits, Trojans, Drive-By Downloads, Rogue Programs and much more. It's not a freware. It's a shareware but at least they have a 15 trial offer.


http://download.stopzilla.com/images/is3/site/landing_pages/stopzilla/MadeEasy/land_spy1_screen.gif


Click Here >>> STOPzilla ANTI-SPYWARE (http://www.stopzilla.com/products/stopzilla/landing.do?type=download_nonav&aid=10496&cid=SITES_scanwith&gclid=CJXgso7kppYCFQykagodxV1Q6w)

Ov3rCasT
10-15-2008, 11:50 AM
RegAuditor 2.2

Description

Registry Auditor is a free tool giving you a quick look at the Adware, malware and spyware installed on your computer including parasites and trojans. Registry Auditor tells you by colored icons ( green icon - safe, yellow icon - unknown, red icon - harmful ) whether specific Objects are known to be safe or harmful, also the program searches the registry for entries including filenames that aren't present on and allows you to delete unwanted registry entries. The tool is designed with a user-friendly interface and is easy to use.



http://www.nsauditor.com/images/nsheader.jpg


Click Here >>> RegAuditor 2.2 (http://www.nsauditor.com/anti_adware_spyware_tools/registry_adware_spyware_scanner.html)

Ov3rCasT
11-16-2008, 01:47 AM
Runscanner


Description:

RunScanner is a freeware windows system utility which scans your system for all running programs, autostart locations, drivers, services and hijack points.
You can use Runscanner to detect changes and misconfigurations in your system caused by spyware, virusses or human errors. You have two choices. A "Beginner mode" for novice users that want to do a scan and upload their results to a malware specialist forum and an "Expert mode" for advanced users, all startup tweaks, scanning, reporting, filtering and delete features are available.

Warning: The Runscanner feature requires advanced knowledge about Windows. If you delete an item, without knowing what it is, it can lead to major Windows problems.



http://www.runscanner.net/images/runlog.gif


Click Here >>> Runscanner (http://www.runscanner.net/)

Ov3rCasT
01-04-2009, 08:50 PM
Dr.Web CureIt!

Description

Easy to use FREE curing utility to clean your computer infected with viruses and various unwanted codes by the Dr.Web Anti-virus updated once or several times an hour. This is a FREE anti-virus and anti-spyware utility based on Dr.Web Anti-virus scanner, which will help you quickly scan and cure, if necessary, a computer operated by MS Windows 95OSR2/ 98/Me/NT 4.0/2000/XP/2003/Vista without installation of the Dr.Web Anti-virus.


http://www.freedrweb.com/img/logo_top_en.jpg


Click Here >>> Dr.Web CureIt! (http://www.freedrweb.com/cureit/)

Ov3rCasT
04-20-2009, 03:31 PM
a-squared HiJackFree

Description

a-squared HiJackFree is a detailed system analysis tool which helps advanced users to detect and remove all types of HiJackers, Spyware, Adware, Trojans and Worms. Best of all, this great tool is free for private use!


Manage all types of Autoruns on your system
Control all Explorer and Browser plugins (BHOs, Toolbars, etc.)
Manage all running Processes and their associated modules
Control all Services, even those Windows doesn't display
View open ports and the associated listening processes
View all DNS entries in the hosts file
Manage installed Layered Service Providers (LSPs)
Analyze the system configuration with using our live online analysis
It comes with language packs for English, German, French, Spanish, Italian, Japanese and many more.

*
*

http://www.hijackfree.com/images/en/processes_220.jpg


Click Here >>> a-squared HiJackFree (http://www.hijackfree.com/en/hijackfree/)

Ov3rCasT
04-21-2009, 03:33 PM
HijackThis 2.0.2


Description

HijackThis™ is a free utility which quickly scans your Windows computer to find settings that may have been changed by spyware, malware or other unwanted programs. HijackThis creates a report, or log file, with the results of the scan.

IMPORTANT: This tool is mostly recommended for advanced users because HijackThis does not determine what is good or bad. Do not make any changes to your computer settings unless you are an expert computer user.

Advanced users can use HijackThis to remove unwanted settings or files.

HijackThis is a popular software (Freeware) to scans areas of your registry and hard drive and returns a log of items which it detects.


http://www.trendsecure.com/portal/en-US/_images/tools/hjt_logo.gif



Click Here >>> HijackThis 2.0.2 (http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download)

_________________________________________________

Of course, you'll find others interesting products on their site (and some of them are totally free).

Trendmicro

http://us.trendmicro.com/images/common/LogoTrendMicro_3d.gif


Click Here >>> Trendmicro (http://us.trendmicro.com/us/products/index.html)

Ov3rCasT
06-15-2009, 03:55 PM
IObit Security 360 Beta 1.0

Description

IObit Security 360 is a free advanced malware & spyware removal utility that detects, removes and protects your PC from various of potential spyware, adware, trojans, keyloggers, bots, worms, and hijackers. With the unique "Dual-Core" engine and the heuristic malware detection, IObit Security 360 detects the most complex and deepest spyware and malware in a very fast and efficient way. IObit Security 360 has a real-time malware protection and frequent automatic updating for prevention of zero-day security threats. IObit Security 360 can work with your Antivirus for a superior PC security.


http://www.iobit.com/Images/is360.png


Click Here >>> IObit Security 360 Beta 1.0 (http://www.techspot.com/downloads/3580-iobit-security-360.html)

!AR!BlackHawk
09-29-2009, 08:29 PM
Microsoft now also offers a NEW free Anti-Malware/Virus scanner for all legit Windows users.

Supported OS:
-Windows XP
-Windows VISTA
-Windows 7

Download link:
http://www.microsoft.com/security_essentials/